Galaxy Holdings, a digital technology group within the Sovico ecosystem, operates across multiple industries including banking, finance, securities, insurance, aviation, real estate, healthcare, and education. It serves as the Group's core technology platform, consolidating market-leading capabilities to drive digitalization, innovation, and scalable business growth across all member companies.
The Security Architect will play a strategic leadership role in designing, governing, and implementing enterprise-wide cybersecurity architecture across the Galaxy Holdings ecosystem.
The role requires deep expertise in enterprise security architecture, zero-trust frameworks, cloud security, and security governance to ensure scalable and resilient cybersecurity capabilities aligned with the Group's digital transformation strategy.
I. Responsibilities
Security Architecture Strategy
- Define and lead the enterprise cybersecurity architecture strategy for Galaxy Holdings and its member companies.
- Develop security reference architectures, policies, standards, and frameworks across the organization.
- Ensure alignment between business strategy, digital transformation initiatives, and cybersecurity architecture.
Enterprise Security Governance
- Establish group-wide security governance models, frameworks, and best practices.
- Define cybersecurity architecture standards covering:
+ Identity & Access Management (IAM)
+ Network security
+ Application security
+ Data protection
+ Cloud security
+ DevSecOps
- Ensure compliance with international security standards such as: ISO 27001 / NIST / CIS / Zero Trust Architecture
Security Architecture Design
- Design and oversee the implementation of enterprise security architecture for critical systems and digital platforms.
- Lead architecture reviews for major technology initiatives across the group.
- Ensure security-by-design principles are embedded into new platforms and services.
Cloud & Digital Security
- Define security architecture for: Multi-cloud environments (AWS, Azure, GCP)/ Hybrid infrastructure/ SaaS platforms
- Ensure secure integration across enterprise systems including: CRM/ ERP/ Digital platforms/ API ecosystems
Risk Management & Cyber Resilience
- Lead enterprise-level cyber risk assessment and threat modeling.
- Design architecture for security monitoring, incident response, and cyber resilience.
- Strengthen the organization's capability to detect, prevent, and respond to cyber threats.
Collaboration & Advisory
- Act as the strategic cybersecurity advisor to executive leadership.
- Work closely with: CIO/ CTO/ Enterprise Architects/ Technology leaders across member companies.
- Provide architectural guidance for large-scale technology and digital initiatives.
Security Innovation
- Continuously evaluate emerging security technologies including: AI-driven cybersecurity/ Zero Trust frameworks/ Advanced threat intelligence
- Recommend new solutions to enhance enterprise security posture.
II. Requirements:
- Master's degree in Cybersecurity, Computer Science, Information Security, or related field.
- 15+ years of experience in cybersecurity and enterprise architecture.
- At least 5+ years in senior security architecture or leadership roles.
- Proven experience designing enterprise-level security architectures for large organizations or technology ecosystems.
- Strategic thinking and systems architecture mindset.
- Strong executive communication skills.
- Ability to lead cross-functional technology initiatives.
- Experience working in complex enterprise environments.
Highly Certifications Preferred
- CISSP Certified Information Systems Security Professional
- CISM Certified Information Security Manager
- SABSA Security Architecture Certification
- TOGAF Enterprise Architecture
- CCSP Certified Cloud Security Professional
Key Skills & Expertise
- Enterprise Security Architecture
- Zero Trust Security Framework
- Cloud Security (AWS / Azure / GCP)
- Identity & Access Management
- Data Security & Encryption
- DevSecOps
- Threat Modeling
- Cyber Risk Management
- Security Governance & Compliance
Why Join Galaxy Holdings
- Opportunity to build group-level cybersecurity architecture across a large ecosystem.
- Work with multiple industries and large-scale digital platforms.
- Lead the security foundation for next-generation digital transformation initiatives.
- A creative and modern working environment.
- Direct involvement in technology-driven business growth initiatives within the securities industry.
- High-impact role working with senior clients and stakeholders.
- Professional, regulated environment with strong opportunities for career growth in consulting and business development.
BENEFITS:
- Competitive salary package
- Probation period salary is 100% of the official salary
- Comprehensive health and accident insurance
- 15 days of annual leave, 3 days working from home per month
- Provision of work equipment (Macbook/Laptop, mouse, monitor, etc.)
- A creative and modern working environment.
Work Location: Floor 9, Galaxy Innovation Hub, D1 Road, Hi-Tech Park, Thu Duc City, HCMC
